Feeds

Terror phone clone scam exposed

Rogers bill probe unveils abuse

Using blade systems to cut costs and sharpen efficiencies

Affiliates of terrorist organization Hezbollah cloned the mobiles of senior executives of Canadian operator Rogers Communications, including chief exec Ted Rogers. Even though the firm had technology in place to trigger alerts over suspicious departures in call activity, Rogers staffers were too frightened of inconveniencing bosses to do anything about the fraud, Canadian paper the Globe and Mail reports.

The scam only came to light after law professor Susan Drummond challenged a mobile phone of C$12,000 she received after her return from a month-long trip to Israel. The monster mobile bill listed more than 300 calls made in August to foreign countries including Libya, Pakistan, Russia and Syria. Drummond was told she'd have to foot the bill despite her protests than she'd never previously made overseas calls using the account. Her normal bill was around C$75.

Rogers' continued insistence that the bill nevertheless had to be paid prompted Drummond and her partner, Harry Gefen, to begin investigating. That probe hit pay dirt when Gefen tape recorded an interview with a Rogers security manager, Cindy Hopper, who was speaking at a conference on telecoms fraud in Toronto in September. Unaware that Gefen was an aggrieved punter, Hopper told him that terrorists groups linked to had Hezbollah repeatedly cloned the mobile phones of senior Rogers execs in 1997 and 1998. Senior Rogers' execs were perfect targets for fraud since staffers could not be sure if calls were legitimate or not. Fear of inconveniencing their superiors over something that turned out to be a false alarm prevented workers from taking any action.

"They were cloning the senior executives repeatedly, because everyone was afraid to cut off Ted Rogers' phone," Hopper told Gefen, in an interview that recognised the cleverness of the social engineering trick. "They were using actually a pretty brilliant psychology. Nobody wants to cut off Ted Rogers' phone or any people that are directly under Ted Rogers, so they took their scanners to our building... Nobody wants to shut off Ted. Even if he is calling Iran, Syria, Lebanon, and Kuwait."

During the interview, Hopper confirmed that Rogers had a system in place similar to those used by banks to flag up suspicious card transactions that was capable of spotting fraud-in-progress. The information obtained by her partner enabled Drummond to file a small court claim against Rogers Wireless alleging that it "profiting from crime" by failing to shut down stolen mobile phones.

Initially Rogers resisted this action arguing that Drummond was responsible for calls made on the account prior to reporting that her phone was been misused. However after the story broke over the weekend, Rogers CEO Ted Rogers intervened and offered to write off the debt along with paying Gefen and Drummond's out-of-pocket expenses. Drummond also extracted from the chief exec to a promise to attend their house and hear their concerns over a cup of tea.

"I'm glad that we got somewhere with this fight, but it shouldn't take a law professor and a technology journalist to make them behave like decent corporate citizens," Drummond told the Globe and Mail. ®

The smart choice: opportunity from uncertainty

More from The Register

next story
Yorkshire cops fail to grasp principle behind BT Fon Wi-Fi network
'Prevent people that are passing by to hook up to your network', pleads plod
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
NEW, SINISTER web tracking tech fingerprints your computer by making it draw
Have you been on YouPorn lately, perhaps? White House website?
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Black Hat anti-Tor talk smashed by lawyers' wrecking ball
Unmasking hidden users is too hot for Carnegie-Mellon
Attackers raid SWISS BANKS with DNS and malware bombs
'Retefe' trojan uses clever spin on old attacks to grant total control of bank accounts
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
Don't look, Snowden: Security biz chases Tails with zero-day flaws alert
Exodus vows not to sell secrets of whistleblower's favorite OS
prev story

Whitepapers

Seven Steps to Software Security
Seven practical steps you can begin to take today to secure your applications and prevent the damages a successful cyber-attack can cause.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.